Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=66426.cc
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 03, 2026
Valid Until
August 01, 2026
53 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
38:1A:FE:AA:CB:28:3B:1A:1F:B3:DC:BF:C1:AC:E4:77:10:91:A6:38:15:18:35:E5:CE:79:C9:13:4D:7D:B4:25
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
laroma.co
*.laroma.co
*.com.laroma.co
*.345dfe26-1863-4f27-978e-6d249503efcc.66426.cc
66426.cc
*.66426.cc
*.6fb9670b-be5a-4206-95ba-0453d7548702.66426.cc
*.admin.66426.cc
*.analytic.66426.cc
*.analytics.66426.cc
*.api.66426.cc
*.app.66426.cc
*.bbc25aaa-84d8-40aa-8f8b-d2f4706f73c7.66426.cc
*.careers.66426.cc
*.dev.66426.cc
*.efbppstore.66426.cc
*.explorer.66426.cc
*.external.66426.cc
*.home.66426.cc
*.hr.66426.cc
*.intranet.66426.cc
*.jobs.66426.cc
*.kvcefstore.66426.cc
*.mobile.66426.cc
*.news.66426.cc
*.portal.66426.cc
*.public.66426.cc
*.remote.66426.cc
*.sharepoint.66426.cc
*.sitemap.66426.cc
*.sitemaps.66426.cc
*.store.66426.cc
*.test.66426.cc
*.uat.66426.cc
*.vdi.66426.cc
*.www.66426.cc
accountblueprints.co
*.accountblueprints.co
elangwinwin.us
*.elangwinwin.us
ere32.icu
*.ere32.icu
headsetup.com
*.headsetup.com
hhexc.com
*.hhexc.com
hhsyn.com
*.hhsyn.com
*.m.marcellusfacts.com
marcellusfacts.com
*.marcellusfacts.com
*.portal.marcellusfacts.com
*.prod.marcellusfacts.com
*.test-api.marcellusfacts.com
*.test.marcellusfacts.com
*.uat.marcellusfacts.com
*.wap.marcellusfacts.com
*.xcx.marcellusfacts.com
nz88.vip
*.nz88.vip
omnichannelpay.com
*.omnichannelpay.com
paulfitzone.com
*.paulfitzone.com
paylinkmerchantpro.com
*.paylinkmerchantpro.com
positiveboomers.club
*.positiveboomers.club
pt777amp.click
*.pt777amp.click
puybt.com
*.puybt.com
qkpvmq.club
*.qkpvmq.club
snapzone.pro
*.snapzone.pro
*.ww38.snapzone.pro
speedstarsgame.net
*.speedstarsgame.net
tableware.kitchen
*.tableware.kitchen
thedusktilldawn.com
*.thedusktilldawn.com
*.com.wosforum.com
*.comune.wosforum.com
*.teknolojizamani.wosforum.com
wosforum.com
*.wosforum.com
wzmymq.town
*.wzmymq.town
Other domains in certificate